Co-founder and CTO of RedRays
An attacker can change stored data by making specific entries in the SAP Payment Engine area.
Score: 0
Detailed vulnerability information added to RedRays Security Platform. Contact [email protected] for details.
https://launchpad.support.sap.com/#/notes/1508333
Unauthenticated Insecure Deserialization Enabling Complete System Takeover CVSS 10.0 / 10 HotNews Priority No Authentication Remote Code Execution Published: October 14, 2025
Unauthenticated Path Traversal Enabling System-Wide File Manipulation CVSS 9.8 HotNews Priority No Authentication Required Published: October 14, 2025 Component: SAPSPRINT 🚨 Maximum
Deep Analysis of a High-Severity Flaw in SAP Supplier Relationship Management CVSS 9.0 HotNews Priority Published: October 14, 2025 Component: SRMNXP01 🚨
SAP has released its October 2025 security patch package containing 16 security notes addressing critical vulnerabilities across enterprise SAP environments. This release